Vulnerabilities > Cmreams

DATE	CVE	VULNERABILITY TITLE	RISK
2008-07-02	CVE-2008-2985	Path Traversal vulnerability in Cmreams CMS 1.3.1.1 Directory traversal vulnerability in load_language.php in CMReams CMS 1.3.1.1 Beta 2, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page_language parameter. network cmreams CWE-22	6.8
2008-07-02	CVE-2008-2984	Cross-Site Scripting vulnerability in Cmreams CMS 1.3.1.1 Cross-site scripting (XSS) vulnerability in backend/umleitung.php in CMReams CMS 1.3.1.1 Beta 2 allows remote attackers to inject arbitrary web script or HTML via the lang[be_red_text] parameter. network cmreams CWE-79	4.3

Vulnerabilities > Cmreams {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Cmreams"}]}